CLAIMS 




1. A sesi ion-state management method comprising: 



generating 



en encoded session-state token, wherein the token incorporates a 



representation of session state of a client; 



encrypting 



produce an encryp ed token; and 



sending the 



2. A mejthod as recited in claim 1 5 further comprising authenticating the 
user of the client. 



3, A method 
user of the client, 

receiving a 

comparing 
record containing 

comparing 
associated password 

establishing 



the encoded token using a one-way encryption scheme to 



encrypted token to the client. 



as recited in claim 1, further comprising authenticating the 
wherein the authenticating step comprises: 
user identification indicator ("username") and a password; 
the username to a database of authorized user records, each 
username and a username-associated password; 
the password received in the receiving step to a username- 

of a record containing a matching username; and 
a session for the user. 



4. Am 

comprises formin 
incremental time block 



thod as recited in claim 1, wherein the generating step 
a confirmation token that incorporates a representation of an 
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5. A method 



as recited in claim 1, wherein the generating step 



comprises forming a confirmation token that incorporates a representation of a 



current incremental tim 



comprises forming a 
incremental time bloc 



block. 



6. A method as recited in claim 1, wherein the generating step 



7. A comp 
instructions that, whdn 
claim 1. 



confirmation token that incorporates a representation of an 
that is prior a current incremental time block. 



iter-readable storage medium having computer-executable 
executed by a computer, performs the method as recited in 



8. A session-state management method comprising: 
receiving a ohe-way encrypted, session-state token from a client, wherein 

the token incorporates a representation of session state of a client; 

generating a one-way encrypted, confirmation session-state token; 
comparing the confirmation token with the received token. 

9. A met iod as recited in claim 8, wherein the generating step 



comprises forming 



a confirmation token that incorporates a representation of an 



incremental time block 
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10. A irethod as recited in claim 8, wherein the generating step 



comprises forming 
current incremental 

11. A m 

comprises forming 



a confirmation token that incorporates a representation of a 
time block. 

sthod as recited in claim 8, wherein the generating step 
a confirmation token that incorporates a representation of an 



incremental time block that is prior a current incremental time block. 

12. A method as recited in claim 8, further comprising: 
issuing a one-way encrypted, replacement session-state token; 
sending the replacement token to the client. 

13. A method as recited in claim 12, wherein the issuing step comprises 
forming a replacement token that incorporates a representation of a current 
incremental time block. 



14. A method! as recited in claim 8, wherein the generating step 
comprises forming a confirmation token that incorporates a representation of an 
incremental time block, if confirmation and received tokens fail to match, the 
method further comprising: 

generating a new one-way encrypted, confirmation session-state token, 
wherein the confirmation token incorporates a representation of a previous 
incremental time block; 

comparing the new confirmation token with the received token. 
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15. A method as recited in claim 14, wherein the new-confirmation- 
token generating step comprises forming a confirmation token that incorporates a 
representation of z n incremental time block, if confirmation and received tokens 
fail to match, the method further comprising: 

repeating the steps of new-confirmation-token generating and comparing 
the new and received tokens, wherein each subsequent reiteration of such steps 
employs a representation of a previous incremental time block that is previous a 
previous reiteration of the same steps, for a specified number of times or until 
compared tokens match. 



16. A computer-readable storage medium having computer-executable 
instructions that, whjen executed by a computer, performs the method as recited in 
claim 8. 



17. A sessipn-state management method comprising: 

(A) receiving a one-way encrypted, session-state token from a client; 

(B) generating a one-way encrypted, confirmation session-state token, 
wherein the confirmation token incorporates a representation of a current 
incremental time blocl 

(C) comparing tike confirmation token with the received token; 

(D) if the confirmation token and the received token match, 

(1) issuing a one-way encrypted, replacement session-state token, 
wherein the replacement token incorporates a representation of a current 
incremental time Mock; 

(2) sendingUhe replacement token to the client. 
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if the confirmation token and the received token fail to match, 

(3) generating a new one-way encrypted, confirmation session-state 
token using tho one-way encryption scheme of the encryption step, 
wherein the token incorporates a representation of a previous incremental 
time block; 

(4) comparing the new confirmation token with the received token; 

(5) if thelnew confirmation and received tokens fail to match, then 
further comprisir 

(i) Repeating the steps of new-confirmation-token generating 
and comparing the new and received tokens, wherein each 
subsequent! reiteration of such steps employs a representation of a 
previous incremental time block that is previous a previous 
reiteration ojf the same steps, for a specified number of times; 

(ii) ii, during the repeating step, the confirmation token 
matches the received token, 

(a) issuing a one-way encrypted, replacement session- 
state token, wherein the token incorporates a representation 
of a current incremental time block; 

(ft) sending the replacement token to the client. 



18. A computer-readable storage medium having computer-executable 
instructions that, when executed by a computer, performs the method as recited in 
claim 17. 
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19. A sessio n-state management method comprising: 



authenticating i 
generating an 



user of a client to establish a session with the user; 
encoded session-state token, wherein the encoded token 
incorporates a representation of session-state of the user's session; 
sending the session-state token to the client. 



20. A method as recited in claim 19, wherein the authenticating step 
comprises: 

receiving a user identification indicator ("username") and a password; 

comparing the msername to a database of authorized user records, each 
record containing a username and a username-associated password; 

comparing the password received in the receiving step to a username- 
associated password of a record containing a matching username; and 

establishing a session for the user. 

21. A method ps recited in claim 19, wherein: 

the user is identified by a user identification indicator (UserlD); 
the generating ste]J> comprises forming a session-state token at least partially 
based upon the UserlD. 



22. A method as recited in claim 19, wherein: 

a time block is identified by a time block identification indicator (TimelD); 



the generating step 
based upon the TimelD. 



comprises forming a session-state token at least partially 
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23. A method 
the user is 
a time block is 
the generating 
based upon the UserlD 



as recited in claim 19, wherein: 
identified by a user identification indicator (UserlD); 

dentified by a time block identification indicator (TimelD); 

comprises forming a session-state token at least partially 
and the TimelD. 



step 



24. A method as recited in claim 19, further comprising encrypting the 
encoded token between the generating and the sending steps. 

25. A method as recited in claim 19, further comprising one-way 
encrypting the encoded token between the generating and the sending steps 

26. A method as recited in claim 19, wherein: 

the user is identified by a user identification indicator (UserlD); 
a time block is identified by a time block identification indicator (TimelD); 
the generating step comprises combining UserlD and TimelD to produce an 
encoded token. 



27. A computer-rqadable storage medium having computer-executable 
instructions that, when executed by a computer, performs the method as recited in 
claim 19. 
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28. A session-state token generation method, wherein an authenticated 
user is identified by a user identification indicator (UserlD) and a time block 
identification indicator (TimelD) identifies a specific time block, the method 
comprising: 

combining UserlD and TimelD to produce an encoded token; 
encrypting the encoded token. 

29. A method as recited in claim 28, wherein the combining step 
comprises concatenating UserlD and TimelD. 

30. A method! as recited in claim 28, wherein the combining step 
comprises concatenating UserlD, TimelD, and a code key. 

31. A method ks recited in claim 28, wherein the encrypting steps 
comprises encrypting the encoded token using a one-way encryption scheme. 

32. A method aa recited in claim 28, wherein the encrypting steps 
comprises: I 

encrypting the encoaed token using a one-way encryption scheme to 
produce an encrypted result; and 

selecting a defined pomion of the encrypted result to form a session-state 
token. 1 
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33. A computer-readable storage medium having computer-executable 
instructions that, when executed by a computer, performs the method as recited in 
claim 28. 

34. A session-state management method comprising: 

receiving a user-associated, encoded session-state token from a client, 
wherein the encoded! token incorporates a representation of session-state of the 
user's session; 1 

generating an encoded, confirmation session-state token; 

comparing the received token with the confirmation token. 

35. A method as recited in claim 34, wherein the generating step 
comprises forming a confirmation token that incorporates a representation of a 
current incremental time block, if confirmation and received tokens fail to match, 
further comprising: I 

generating a new confirmation token using a representation of a 
incremental time block previous of the time block representation used for the 
previous generating step; 1 

comparing the new! confirmation token with the received token. 
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36. A method as recited in claim 35, if confirmation and received tokens 
fail to match, further comprising: 

repeating the steps of generating a new confirmation token and comparing 
the new and received tokens, wherein each subsequent reiteration of these steps 
uses a representation of a previous incremental time block that is previous a 
previous reiteration of the same steps, for a specified number of times or until 
compared tokens matdh. 

37. A method as recited in claim 34, wherein the user-associated 
session-state token is encrypted. 

38. A method! as recited in claim 34, wherein the user-associated 
session-state token is one4way encrypted. 

39. A computer4readable storage medium having computer-executable 
instructions that, when executed by a computer, performs the method as recited in 
claim 34. 

40. A session-statelmanagement method comprising: 

receiving a user-assoaiated TimelD from a client, wherein the encoded 
token incorporates a representation of session-state of the user's session; 

designating a first time\ block identification indicator (TimelD) for a first 
time block; 

comparing the user-associated TimelD with the first TimelD. 
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41. The method 
designating a pr}or 
comparing the u$er- 



of claim 40, further comprising: 
TimelD for a time block prior to the first time block; 
associated TimelD with the prior TimelD. 



generate 
representation o 



42. A serve! to communicate with a client over a communications 
network, the server comprising: 
a processor; 

a session-state nianager executable on the processor to: 

a session-state token, wherein the token incorporates a 
session state of the client; 
encrypt the token using a one-way encryption scheme to produce an 
encrypted token; And 

send the encrypted token to the client. 



43. A server to communicate with a client over a communications 
network, the server comprising: 
a processor; 

a session-state manager executable on the processor to: 

receive a one-way encrypted, session-state token from the client, 
wherein the token incorporates a representation of session state of a client; 

generate a one-way encrypted, confirmation session-state token; 

compare the confirmation token and the received token. 
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* 



44. A server to communicate with a client over a communications 
network, the server (pomprising: 
a processor; 

a session-statle manager executable on the processor to: 

authenticate a user of the client; 

generate an encoded session-state token, wherein the token 
incorporates al representation of session state of the client; and 

send th© session-state token to the client. 



45. A manager as recited in claim 44, wherein session-state manager 
executable on the processor to encrypt the encoded session-state token. 

46. A manager as recited in claim 44, wherein session-state manager 
executable on the processor to one-way encrypt the encoded session-state token. 



47. A server Ito communicate with a client over a communications 
network, wherein an authenticated user is identified by a user identification 
indicator (UserlD) and altime block identification indicator (TimelD) identifies a 
specific time block, the sqrver comprising: 

a processor; 

a session-state manager executable on the processor to: 

combine UsdrlD and TimelD to produce a encoded token; and 
encrypt the encoded token. 
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48. A se ver to communicate with a client over a communications 



network, the server 
a processor; 
a session-stat 
receive 

client; 

generat 



comprising: 



manager executable on the processor to; 
a user-associated, encoded session-state token from the 



; an encoded, confirmation session-state token, wherein the 
confirmation token incorporates a representation of session state of the 
client; 

compare the received token with the confirmation token. 

49. A computer-readable storage medium having computer-executable 
instructions that, when executed by a computer, performs the method comprising: 

generating an encoded session-state token, wherein the token incorporates a 
representation of session state of a client; 

encrypting the endoded token using a one-way encryption scheme; 

sending the encrypted token to the client. 



50. A computer-readable storage medium having computer-executable 
instructions that, when executed by a computer, performs the method comprising: 

receiving a one-way encrypted, session-state token from a client, wherein 
the token incorporates a representation of session state of a client; 

generating a one-way encrypted, confirmation session-state token; 

comparing the confiiWtion token with the received token. 
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